Bosch Rexroth

Bosch Rexroth, a major industrial automation and hydraulics manufacturer, has a high-severity vulnerability (CVSS 7.8) that requires local access and user interaction but requires no authentication, potentially allowing an attacker to compromise confidentiality, integrity, and availability of affected systems. The vulnerability affects local system security rather than remote network exposure, making it a concern primarily for environments where physical or local network access is possible. Security teams should monitor for exploitation attempts targeting Rexroth industrial control systems and ensure proper access controls are in place on local machines running vulnerable software until patches are released by the July 2026 deadline.